Memory Hacking Software

The AAC settings may be more effective this time.
Restricted Mode no longer obtains the path to the process nor its name because the Windows® functions that do that internally call ReadProcessMemory() on the target process, which was what was being detected before.

Because of this simple call, previous AAC settings would have no effect, since Windows® would be calling ReadProcessMemory() directly instead of using the MHS kernel functions.

There is still one possible loophole left, but patching it will take away a lot of MHS’s functionality. But it may be worth it if it works, since it isn’t called “Restricted Mode” for nothing…

But before that, it is best to see if AAC settings will work better together with the new Restricted Mode.


L. Spiro

lolz.......


4.016 cant install

gqkhor wrote:lolz.......


4.016 cant install

MHS doesn't need to install right? For me, is just extract all the files into a " New Folder " Then click on MHS.exe, Done. MHS launched =3=

gqkhor wrote:lolz.......


4.016 cant install

Failure on many levels.
#1: 4.016 has nothing to do with anything.
#2: MHS does not install.
#3: Spelling…
#4: Grammar…
#5: Off topic.


L. Spiro

XxNyxheroxX wrote:

gqkhor wrote:lolz.......


4.016 cant install

MHS doesn't need to install right? For me, is just extract all the files into a " New Folder " Then click on MHS.exe, Done. MHS launched =3=

EPICK PHAIL

colintso wrote:

XxNyxheroxX wrote:

gqkhor wrote:lolz.......


4.016 cant install

MHS doesn't need to install right? For me, is just extract all the files into a " New Folder " Then click on MHS.exe, Done. MHS launched =3=

EPICK PHAIL

Don't spam, colinsto.

Explicit wrote:

colintso wrote:

XxNyxheroxX wrote:

gqkhor wrote:lolz.......


4.016 cant install

MHS doesn't need to install right? For me, is just extract all the files into a " New Folder " Then click on MHS.exe, Done. MHS launched =3=

EPICK PHAIL

Don't spam, colinsto.

sorry...its not colinsto its colintso!

http://mhs.mpcforum.com/MHS5.006.rar

Tons of improvements:

Code: Select all

   1:   Fixed the UDD Path option, broken in MHS 5.6.
   2:   Search speed fixed on Windows® Vista®.
   3:   Fixed the CallRemoteFunction() script function (previously always failed).
   4:   Fixed an error related to setting breakpoints one address away from each other.
   5:   If there is no selection, copy operations occur on the highlighted address (the grey address) in the Disassembler.
   6:   Added the Copy Address pop-up–menu item to the Imports and Exports tabs in the Helper window of the Disassembler.
   7:   Fixed the bug where clicking the Go to Dis… button in the Auto-Hack window would always open in a new tab regardless of the check state.
   8:   The Assemble button in the Auto-Hack window now works.
   9:   The NOP button in the Auto-Hack window no longer tries to NOP if no address is selected.
   10:   The module lists no longer waste time updating twice in a row when debugging begins.
   11:   Nodes can now be deleted from loaded .lcf files in the Code Filter.
   12:   Added the File/New menu item to the Code Filter, allowing to make a new filter set from scratch.
   13:   Added the ability to supply registers when calling functions in the target process.
   14:   The Disassembler now shows referenced addresses in more detail.
   15:   The Disassembler now loads OllyDbg 2 UDD files for comments.
   16:   Fixed a bug in the scripts related to using floats as function parameters.

Source code available for $200.


L. Spiro

Nice MHS 5.006 releases. I gonna try it out.

Thanks L. Spiro

[Edited]

No, I can not download from mpc

I got this problem, I'm not sure that's you copied wrong URL ?

Code: Select all

Error!
Could not connect to remote server

You tried to access the address http://mhs.mpcforum.com/MHS5.006.rar, which is currently unavailable. Please make sure that the Web address (URL) is correctly spelled and punctuated, then try reloading the page.
Make sure your Internet connection is active and check whether other applications that rely on the same connection are working.

Perhaps there is other reasons caused it ?

[After 3 minutes]

It's can be download already, nothing wrong, it is my fault, sorry

$200 omg ...
NyxHero the link works for me xD

need to run administrator if I use vista?(this does work for vista right?)

Haha, you must be misunderstanding.

Keke, I posted this up before you said this.

XxNyxheroxX wrote: [After 3 minutes]

It's can be download already, nothing wrong, it is my fault, sorry

im trying to use 5.006 to attach to rakion and seems to be undetected, but MHS attachs to itself not to rakion.bin (as i saw in the hex editor). in a prior post i was told to set last knob to 4+ so it doesnt attach to itself and 3rd knob 2+. it still attach to itself. do u guys get this with WT unless u do something to stop it?

Someone else, on a previous version of MHS, got around this by setting them all to 6.
His version did not have the new Restricted Mode, so it was eventually detected while it reading the real game memory.

I do not have that game and have not tested it, but the new Restricted Mode may help after the knobs have all been set to 6.


L. Spiro

nah doesnt work still. must have restricted mode on or else it wont even attach to process at all. how high can we set the knobs to now before a buffer overflow? or is there no limit other than our own computers.

I do not know how high; it changes depending on your operating system version.
But I suspect they can go fairly high.


L. Spiro